61 matches found
CVE-2023-28388
CVE-2023-28388 affects Intel® Chipset Device Software prior to version 10.1.19444.8378. Affected component vulnerability is an uncontrolled search path element that could let an authenticated, local attacker escalate privileges. Intel’s advisory (Intel-SA-00870) confirms the vulnerability and rec...
Intel® Chipset Device Software Advisory
Summary: A potential security vulnerability in some Intel® Chipset Device Software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-28388 Description: Uncontrolled search path element in some...
Intel Chipset Device Software Security Vulnerability
Intel Chipset Device Software is a chipset firmware update utility from Intel Corporation USA. A security vulnerability exists in Intel Chipset Device Software. An attacker exploiting this vulnerability could cause an escalation of privileges...
PVS boot time message "Attempting to set IP address on Boot NIC.......complete after 51s."
Target devices show a boot time message "Attempting to set IP address on Boot NIC.......complete after 51s." This message was not observed in earlier versions of PVS target device software like PVS 1912...
CVE-2022-36403
Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2022-36403
Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2022-36403
Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
Design/Logic Flaw
Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2022-36403
The CVE-2022-36403 issue affects Ricoh Device Software Manager installer up to version 2.20.3.0. The root cause is an untrusted search path that may cause insecure loading of DLLs (CWE-427), potentially allowing arbitrary code execution with the installer user’s privileges. Public documents consi...
CVE-2022-36403
Untrusted search path vulnerability in the installer of Device Software Manager prior to Ver.2.20.3.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
The vulnerability of the Device Software Manager installer, related to an uncontrolled search path, allows a hacker to load arbitrary files.
The vulnerability of the Device Software Manager installer is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow a hacker to load arbitrary files...
Ricoh Device Software Manager 代码问题漏洞
Ricoh Device Software Manager is a device software manager from Ricoh Japan. A security vulnerability exists in Ricoh Device Software Manager, which arises from the possibility that the installer may load unsafe dynamic link libraries...
PT-2022-4667 · Unknown · Device Software Manager
Name of the Vulnerable Software and Affected Versions: Device Software Manager versions prior to 2.20.3.0 Description: The issue is related to an untrusted search path vulnerability in the installer of Device Software Manager. This vulnerability can be exploited by an attacker to gain privileges...
The vulnerability of the command-line interface (CLI) of Zyxel network device software allows a hacker to trigger a service failure.
The vulnerability of the command-line interface CLI of Zyxel network device software implementations is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to cause service failures...
Insecure Storage of Sensitive Information in Microweber
Microweber prior to version 1.3 does not strip images of EXIF data, exposing information about users' locations, device hardware, and device software...
CVE-2021-24046
A logic flaw in Ray-Ban® Stories device software allowed some parameters like video capture duration limit to be modified through the Facebook View application. This issue affected versions of device software before 2107460.6810.0...
CVE-2021-24046
A logic flaw in Ray-Ban® Stories device software allowed some parameters like video capture duration limit to be modified through the Facebook View application. This issue affected versions of device software before 2107460.6810.0...
CVE-2021-24046
A logic flaw in Ray-Ban® Stories device software allowed some parameters like video capture duration limit to be modified through the Facebook View application. This issue affected versions of device software before 2107460.6810.0...
CVE-2021-24046
CVE-2021-24046 describes a logic flaw in Ray-Ban Stories device software that allows certain parameters, notably the video capture duration limit, to be modified through the Facebook View application. Affected are device software versions prior to 2107460.6810.0. The connected sources consistentl...
Ray-Ban Stories安全漏洞
Ray-Ban Stories is a smart glasses from ray-ban. A security vulnerability exists in Ray-Ban Stories that allows some parameters, such as video capture duration limits, to be modified via the Facebook View application. This issue affects device software versions prior to 2107460.6810.0...